Re: PHP security (or the lack thereof)

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Re: PHP security (or the lack thereof)
From: Kevin Waterson <kevin@xxxxxxxxxxx>
Date: Thu, 29 Jun 2006 10:44:29 +1000
In-reply-to: <EKECJMGPAACGOMIGLJJDEEGKHGAA.geoincidents@xxxxxxx>
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
Organization: Oceania
References: <44A01D2D.8030604@xxxxxxxxxxxx> <EKECJMGPAACGOMIGLJJDEEGKHGAA.geoincidents@xxxxxxx>

This one time, at band camp, "Geo." <geoincidents@xxxxxxx> wrote:

> There are lots of web programs written in perl, asp, even cold fusion. But
> when I watch the security lists I see exploit after exploit for web
> applications and the vast majority of them have one thing in common, they
> are written in PHP.

There are lots of operating systems out there and whin I watch the security 
lists
I see exploit after expooit for applications and the vast majority of them have
one thing in common, they all run on MS.

My point? You are building straw men.

Kevin

-- 
"Democracy is two wolves and a lamb voting on what to have for lunch. 
Liberty is a well-armed lamb contesting the vote."

References:
- Re: PHP security (or the lack thereof)
  - From: Paul Schmehl
- RE: PHP security (or the lack thereof)
  - From: Geo.

Prev by Date: RE: [Full-disclosure] Browser bugs hit IE, Firefox today (SANS)
Next by Date: Re: Browser bugs hit IE, Firefox today (SANS)
Previous by thread: RE: PHP security (or the lack thereof)
Next by thread: Re: PHP security (or the lack thereof)
Index(es):
- Date
- Thread